Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2008-3162
HistoryJul 14, 2008 - 11:41 p.m.

CVE-2008-3162

2008-07-1423:41:00
CWE-119
[email protected]
web.nvd.nist.gov
8

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.131

Percentile

95.5%

JSON

Stack-based buffer overflow in the str_read_packet function in libavformat/psxstr.c in FFmpeg before r13993 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted STR file that interleaves audio and video sectors.

Affected configurations

Nvd
Node
ffmpegffmpegMatch0.3
OR
ffmpegffmpegMatch0.3.1
OR
ffmpegffmpegMatch0.3.2
OR
ffmpegffmpegMatch0.3.3
OR
ffmpegffmpegMatch0.3.4
OR
ffmpegffmpegMatch0.4.0
OR
ffmpegffmpegMatch0.4.2
OR
ffmpegffmpegMatch0.4.3
OR
ffmpegffmpegMatch0.4.4
OR
ffmpegffmpegMatch0.4.5
OR
ffmpegffmpegMatch0.4.6
OR
ffmpegffmpegMatch0.4.7
OR
ffmpegffmpegMatch0.4.8
OR
ffmpegffmpegMatch0.4.9
VendorProductVersionCPE
ffmpegffmpeg0.3cpe:2.3:a:ffmpeg:ffmpeg:0.3:*:*:*:*:*:*:*
ffmpegffmpeg0.3.1cpe:2.3:a:ffmpeg:ffmpeg:0.3.1:*:*:*:*:*:*:*
ffmpegffmpeg0.3.2cpe:2.3:a:ffmpeg:ffmpeg:0.3.2:*:*:*:*:*:*:*
ffmpegffmpeg0.3.3cpe:2.3:a:ffmpeg:ffmpeg:0.3.3:*:*:*:*:*:*:*
ffmpegffmpeg0.3.4cpe:2.3:a:ffmpeg:ffmpeg:0.3.4:*:*:*:*:*:*:*
ffmpegffmpeg0.4.0cpe:2.3:a:ffmpeg:ffmpeg:0.4.0:*:*:*:*:*:*:*
ffmpegffmpeg0.4.2cpe:2.3:a:ffmpeg:ffmpeg:0.4.2:*:*:*:*:*:*:*
ffmpegffmpeg0.4.3cpe:2.3:a:ffmpeg:ffmpeg:0.4.3:*:*:*:*:*:*:*
ffmpegffmpeg0.4.4cpe:2.3:a:ffmpeg:ffmpeg:0.4.4:*:*:*:*:*:*:*
ffmpegffmpeg0.4.5cpe:2.3:a:ffmpeg:ffmpeg:0.4.5:*:*:*:*:*:*:*
Rows per page:
1-10 of 141

Related

openvas 12
prion 1
securityvulns 2
nessus 6
freebsd 1
debiancve 1
cvelist 1
exploitdb 1
ubuntucve 1
ubuntu 1
cve 1
debian 1
osv 1
gentoo 2
openvas
openvas
Mandriva Update for ffmpeg MDVSA-2008:157 (ffmpeg)
2009-04-09 00:00:00
mplayer -- vulnerability in STR files processor
2009-01-20 00:00:00
Ubuntu Update for ffmpeg vulnerability USN-630-1
2009-03-23 00:00:00
prion
prion
Stack overflow
2008-07-14 23:41:00
securityvulns
securityvulns
[USN-630-1] ffmpeg vulnerability
2008-07-30 00:00:00
ffmpeg library code execution
2008-07-30 00:00:00
nessus
nessus
Ubuntu 7.10 / 8.04 LTS : ffmpeg vulnerability (USN-630-1)
2008-07-29 00:00:00
Mandriva Linux Security Advisory : ffmpeg (MDVSA-2008:157)
2009-04-23 00:00:00
FreeBSD : mplayer -- vulnerability in STR files processor (5ccb1c14-e357-11dd-a765-0030843d3802)
2009-01-16 00:00:00
freebsd
freebsd
mplayer -- vulnerability in STR files processor
2008-07-09 00:00:00
debiancve
debiancve
CVE-2008-3162
2008-07-14 23:41:00
cvelist
cvelist
CVE-2008-3162
2008-07-14 23:00:00
exploitdb
exploitdb
FFmpeg libavformat - 'psxstr.c' STR Data Heap Buffer Overflow
2008-07-09 00:00:00
ubuntucve
ubuntucve
CVE-2008-3162
2008-07-14 00:00:00
ubuntu
ubuntu
ffmpeg vulnerability
2008-07-28 00:00:00
cve
cve
CVE-2008-3162
2008-07-14 23:41:00
debian
debian
[SECURITY] [DSA 1781-1] New ffmpeg-debian packages fix arbitrary code execution
2009-04-29 07:00:35
osv
osv
ffmpeg ffmpeg-debian - arbitrary code execution
2009-04-29 00:00:00
gentoo
gentoo
MPlayer: Multiple vulnerabilities
2009-01-12 00:00:00
FFmpeg: Multiple vulnerabilities
2009-03-19 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.131

Percentile

95.5%

JSON
Related for NVD:CVE-2008-3162
openvas12prion1securityvulns2nessus6freebsd1debiancve1cvelist1exploitdb1ubuntucve1ubuntu1cve1debian1osv1gentoo2